Sekilas mengenai hardware jaringan

=====================================================



Yup, kali ini saya akan coba jelaskan sedikit gambaran mengenai fungsi dari hardware jaringan yang telah di request. Yakni Router, Switch dan Hub. Langsung aja ke bahasannya ...

    

Router : Router, digunakan untuk menyambung 2 jaringan yang berbeda. Sebagai contohnya, untuk menyambungkan antara LAN dengan Internet diperlukan adanya router sebagai jembatan dari 2 jaringan tersebut.

Kedudukan router biasanya diletakkan sesudah modem, kira-kira gambarannya adalah seperti ini.

   
  ___________    
___________     ___________    
___________

    
|          |   
|         
|   
|         
|   
|          |

    
| Internet |----|  Modem   |----|  Router 
|----|   LAN    |

    
|__________|    |__________|   
|__________|    |__________|





       



Router yang digambarkan diatas berfungsi sebagai gateway, sekaligus firewall.



Gateway : Gerbang penantian menuju internet. Masing-masing client/workstation dalam jaringan melewati gateway terlebih dahulu untuk menuju internet. Bisa digambarkan seperti ini :



   
     ___________    
__________________    
___________   

   
     |   
      |   
|                
|   
|          | 

         | Internet |----| WS1 as Gateway1 |----| WS Lain  |

   
     |__________|   
|_________________|    |__________|  

   
              
               |

   
           
                 
|

                            
_____|____

   
             
         
|          |

   
             
          | WS Lain  |

   
           
           
|__________|

Firewall : Biasanya dipasang diantara internet dan router. Firewall berfungsi sebagai tembok keamanan untuk jaringan dalam [ LAN ]. Didalamnya biasanya terdapat fasilitas, firewall, logging, snort. etc.







Contoh router phisik multifungsi seperti itu adalah Cisco Router. Tetapi saya lebih cenderung memakai alternatif router yaitu menggunakan Smoothwall. Karena smoothwall hanya memerlukan komputer butut yang sudah lama tidak terpakai dengan harddisk sekitar 300 mb, dan tentunya 2 lan card.

Smoothwall adalah distro linux khusus yang didesain untuk menangani masalah router, firewall, dan gateway. Selain itu Router pun digunakan untuk menyambungkan 2 LAN, yang berbeda subnet masknya. Lebih kearah Intranet.



Switch : Biasanya switch banyak digunakan untuk jaringan LAN token star.



Dan switch ini digunakan sebagai repeater/penguat. Berfungsi untuk menghubungkan kabel-kabel UTP ( Kategori 5/5e ) komputer yang satu dengan komputer yang lain. Dalam switch biasanya terdapat routing, routing sendiri berfungsi untuk batu loncat untuk melakukan koneksi dengan komputer lain dalam LAN.

            

             

Gambarannya adalah seperti ini :     





Hub    : Sama seperti switch, tetapi perbedaannya adalah hub tidak memiliki faslitas routing. Sehingga semua informasi yang datang akan dikirimkan ke semua komputer (broadcast)




Untuk sementara segitu dulu aja penjelasannya yah ... heheuhuehue ... silahkan request lagi.

Nggak mahal kok, cuma 9 jutaan. Huehueh ....
Sumber dari situs Ilmu Website dalam kategori jaringan dengan judul Sedikit Penjelasan Hardware Jaringan


Setting IP MGW :
1.[root@mgw cachak]$ vi /etc/sysconfig/network
lalu isi dengan :

NETWORKING=yes
HOSTNAME=mgw.domain.com
GATEWAY=202.159.121.1

lalu simpen dengan menekan :wq

2.Menconfigurasi IP eth0(default)

[root@mgw root]$ vi /etc/sysconfig/network-scripts/ifcfg-eth0
lalu isi dengan :

DEVICE=eth0
BOOTPROTO=static
IPADDR=202.159.121.2
BROADCAST=202.159.121.7
NETMASK=255.255.255.249
ONBOOT=yes
USERCTL=no

lalu simpen dengan menekan :wq

3.Setting dns resolve

[root@mgw root]$ vi /etc/resolve.conf
lalu isi dengan nameserver dari isp kita tadi :

nameserver 202.159.0.10
nameserver 202.159.0.20

lalu simpen dengan menekan :wq

4.Setting ip_forwarding

[root@mgw cachak]$ vi /etc/sysctl.conf

rubah net.ipv4.ip_forward = 0 menjadi net.ipv4.ip_forward = 1
atau kalau gak ada net.ipv4.ip_forward = 0 tambahin net.ipv4.ip_forward = 1

simpen dengan menekan :wq

5.restart network
[root@mgw cachak]$ /etc/init.d/network restart
Shutting down interface eth0: [ OK ]
Shutting down loopback interface: [ OK ]
Disabling IPv4 packet forwarding: [ OK ]
Setting network parameters: [ OK ]
Bringing up loopback interface: [ OK ]
Bringing up interface eth0: [ OK ]

[root@www root]#chkconfig –level 2345 network on
[root@www root]#

6.testing dengan ngeping ke default gateway 202.159.121.1

[root@mgw cachak]$ ping 202.159.121.1
PING 202.159.121.1 (202.159.121.1) 56(84) bytes of data.
64 bytes from 202.159.121.1: icmp_seq=1 ttl=63 time=0.356 ms
64 bytes from 202.159.121.1: icmp_seq=2 ttl=63 time=0.269 ms
64 bytes from 202.159.121.1: icmp_seq=3 ttl=63 time=0.267 ms
64 bytes from 202.159.121.1: icmp_seq=4 ttl=63 time=0.268 ms

— 202.159.121.1 ping statistics —
4 packets transmitted, 4 received, 0% packet loss, time 2997ms
rtt min/avg/max/mdev = 0.267/0.290/0.356/0.038 ms

7.testing untuk ngeping google.com untuk ngecek dns nya
kalau muncul :
PING google.com (216.239.39.99) 56(84) bytes of data.
berarti dns kita untuk mgw dah bekerja, tapi kalau muncul :
ping: unknown host google.com
berarti dns yang kita isikan di /etc/resolve.conf masih salah,silahkan cek lagi ke ISP nya :)

nah bereskan sudah setting IP untuk mgw nya :)
supaya mgw ini bisa sekaligus di gunakan sebagai ns server oleh client maka harus di install daemon bind atau daemon nameserver yang lain
ataukalau sudah ada tinggal idupin Bind nya

[root@www root]# /etc/init.d/named restart
Stopping named: [ OK ]
Starting named: [ OK ]
[root@www root]#chkconfig –level 2345 named on
[root@www root]#

misalnya ip ke client adalah :
192.168.0.1/24
IP : 192.168.0.1
netmask : 255.255.255.0
broadcast : 192.168.0.255
RANGE IP CLIENT : 192.168.0.2-192.168.0.254

Setting ip untuk eth1 (yang ke client)
1.memberi IP 192.168.0.1 di eth1
[root@mgw cachak]$ vi /etc/sysconfig/network-scripts/ifcfg-eth1
lalu isi dengan :

DEVICE=eth1
BOOTPROTO=static
IPADDR=192.168.0.1
NETMASK=255.255.255.0
BROADCAST=192.168.0.255
ONBOOT=yes
USERCTL=no

lalu simpen dengan menekan :wq

2.Restart networknya

[root@mgw root]$ /etc/init.d/network restart
Shutting down interface eth0: [ OK ]
Shutting down interface eth1: [ OK ]
Shutting down loopback interface: [ OK ]
Disabling IPv4 packet forwarding: [ OK ]
Setting network parameters: [ OK ]
Bringing up loopback interface: [ OK ]
Bringing up interface eth0: [ OK ]
Bringing up interface eth1: [ OK ]

3.Testing dengan cara ping ip eth1
[root@mgw cachak]$ ping 192.168.0.1
PING 192.168.0.1 (192.168.0.1) 56(84) bytes of data.
64 bytes from 192.168.0.1: icmp_seq=1 ttl=63 time=0.356 ms
64 bytes from 192.168.0.1: icmp_seq=2 ttl=63 time=0.269 ms
64 bytes from 192.168.0.1: icmp_seq=3 ttl=63 time=0.267 ms
64 bytes from 192.168.0.1: icmp_seq=4 ttl=63 time=0.268 ms

— 192.168.0.1 ping statistics —
4 packets transmitted, 4 received, 0% packet loss, time 2997ms
rtt min/avg/max/mdev = 0.267/0.290/0.356/0.038 ms

Tinggal Setting IP computer client dengan ketentuan di bawah ini :

IP : 192.168.0.2 - 192.168.0.254
GATEWAY : 192.168.0.1
NETMASK : 255.255.255.0
BROADCAST : 192.168.0.255
NAMESERVER : 192.168.0.1

misal :

Client01
===============================
IP : 192.168.0.2
GATEWAY : 192.168.0.1
NETMASK : 255.255.255.0
BROADCAST : 192.168.0.255
NAMESERVER : 192.168.0.1

Client02
===============================
IP : 192.168.0.3
GATEWAY : 192.168.0.1
NETMASK : 255.255.255.0
BROADCAST : 192.168.0.255
NAMESERVER : 192.168.0.1

dan seterusnya sesuai banyaknya client,yang berubah hanya IP
untuk client windows maka setting IP di bagian Start Menu/Setting/Control Panel/Network

setelah di setting ip client, maka coba ping ke 192.168.0.1 dari client,kalau berhasil berarti client dan MGW nya sudah tersambung.

Setting MGW supaya client bisa internat dengan menggunakan NAT

1.Matikan iptablesnya

[root@mgw root]# /etc/init.d/iptables stop
Flushing all chains: [ OK ]
Removing user defined chains: [ OK ]
Resetting built-in chains to the default ACCEPT policy: [ OK ]
[root@mgw root]#

2.Tambahkan iptables untuk Source NAt sesuai dengan ip di eth0
[root@mgw root]# /sbin/iptables -t nat -A POSTROUTING -o eth0 -s 192.168.0.0/24 -j SNAT –to-source 202.159.121.2
[root@mgw root]# /sbin/iptables-save > /etc/sysconfig/iptables
[root@mgw root]# /etc/init.d/iptables restart
Flushing all current rules and user defined chains: [ OK ]
Clearing all current rules and user defined chains: [ OK ]
Applying iptables firewall rules: [ OK ]
[root@mgw root]# iptables-save

SNAT sudah,SNAT disini standar sekali dan gak ada proteksi
untuk mengetest nya kita browser di client lalau buka google.com, kalau jalan berati kita sudah berhasil :)

nice article …

tambahan ajah nih,
biasanya kesulitannya bukan masalah routingnya .. umumnya deteksi jenis kartu jaringan yang dipergunakan, misal pcmcia dan access point (ap) untuk pengguna wireless (kadang2 apnya perlu direstart setiap perubahan alat atau seting card baru … ^_^).
terus .. untuk mempergunakan squid sebagai proxy local, kesulitannya pada setting msntauth pada direktori /etc/squid
dan jangan dilupakan juga untuk setting transparant proxynya.
jika ada kendala response ping juga, ada baiknya pada /etc/sysctl.conf ditambahin net.ipv4.conf.icmp_echo_ignore_all = 0 dan icmp_echo_ignore_broadcasts = 0

Wingate di daerahku sih banyak difungsikan sebagai gateway, firewall ama proxy tapi sebenarnya fiturnya juga lumayan banyak termasuk email server yang cukup bagus. Ini hasil copy paste dari qbik

Key Functions
WinGate allows you to:

• Provide secure and managed Internet access for your entire network via a single or multiple shared internet connections
• Enforce advanced and flexible access-control and acceptable use policies
• Monitor usage in real time, and maintain per-user and per-service audit logs.
• Stop viruses, spam and inappropriate content from entering your network
• Provide comprehensive internet and intranet email services.
• Protect your servers from internal or external threats.
• Improve network performance and responsiveness with web and DNS caching
• Ease administration burdens on your internal networks.

Banyak juga fiturnya walau fitur yang ditulis lebih ke promosi (nggak nyata nih) coba lebih lengkap di sini. Pasti dong kalau pake wingate itu pasti pake windows dan wingate bisa dipakai sebagai alternative lisensi windows server edition yang lebih mahal CMIIW tapi kalo aku koreksi seperti ini:

Windows -> Ya seperti banyak diketahui kalau windows itu memerlukan perawatan yang lebih memerlukan perhatian admin apalagi windows non server (bahkan win 2003 server rasanya) kalau udah beberapa bulan terasa melambat yang mungkin windowsnya minta direstart ato malah mungkin direinstall (capek deh).Selain itu juga seperti diketahui banyak orang kalau windows itu banyak disoroti karena masalah keamanannya. Harganya pun lumayan mahal.

Wingate -> Gak tau ya perasaanku aja ato memang begini, menurutku interfacenya jelek dan membingungkan. Selain itu harganya juga lumyan mahal. Ini detail pricingnya.

Sebenarnya banyak juga alternative yang lebih masuk akal dari pada menyediakan win(1.5jt)+wingate(7.5rb<) enakan pake clarkconnect yang punya banyak fitur lebih dan juga lebih murah bahkan gratis selain itu lebih mudah dalam administrasi karena web based adminnya lumayan cantik. Dan juga selain tidak kalah (lebih malah) dalam hal performance, pricing dan fitur clarkconnect adalah OS opensource yang keren coba aja masuk ke situsnya. Atau anda ingin menggunakan yang lain ada juga juga kok yang gratis (banyak malah) nih:

• eBox
• Endian Firewall
• m0n0wall
• PfSense
• Shorewall
• Untangle

Dan kelihatannya sih endian firewall keren juga.

Okay, so lets get 'tucked in' to the 'main course' of this post. I wanted to give a brief update regarding the adventures of my Macbook and I. Or at least follow up on some of the topics and problems which i discussed in my last post.

Wireless Connectivity

Okay, so what is first? Well lets talk about the Wireless Network problems, or should i say lack of. I have to apologise to Apple on this one. But the trouble 'all' stemmed from a faulty router. No more than three or four days after my post, my work laptop (a Dell laptop running Vista Ultimate) started to have problems regarding the wireless network. Identical problems and more started to rear their ugly little 802.11g head even with this machine. Luckily a friend at work had a spare router hanging around and was good enough to let me lend it for a while. Guess what, no problems whatsoever since i have been using this different router. The Macbook, The Dell and even the Wii (this is not mine by the way) have seamlessly been able to connect each time to the router, as you would want and expect. So i feel i ought to say a HUGE sorry to Apple and more importantly, my precious little Macbook.

Permission Problems

Well i am also pleased to say that my problems regarding all things 'permissions' related appears to have gone too. I know that all these problems which i faced originated from 'BootCampGate' and the mess which i got myself into after that.

To cut a very long story short on this one, I can remember that two main things, or procedures rather, allowed me to solve this little but oh so annoying problem. These are -

1. I ran 'Disk Utility' several times. Initially, there were problems reported, and so naturally i selected the 'Fix' option and they went. I re-ran this each day after that for a couple of days and repeated the procedure. The problems found naturally became less each day until there were no more.

2. I changed the permissions on my 'Macintosh HD'. I do not know what i didn't do this initially. Worried i suspect that i may do more damage than good. However, all i literally did was to 'Get Info' on the disk add 'Read/Write' access for myself. Additionally, i also ensured that these changes were applied throughout all sub folders and files.

Looking back now at that previous post, i can see that i was overreacting hugely (which by the way, is nothing new really). I was just very frustrated at the time with what seemed at the time, consistent problems. But of course, they were not. Faulty hardware (the router) and my mess up (BootCampGate) were all to blame. Looking back, it had nothing to do with the Macbook or its ability to do what i wanted it to.

Looking Forward

So lets briefly go through what i have been doing with it since then. Well i can proudly say that i have been having a much better time with it. In fact, i have grown to really enjoy using my Mac.

The major addition to my arsenal of Mac software has been VM Fusion. This works beautifully, i have to say it really does work well. I am currently only using the Beta but so far, so good. I am using it to run the necessary evil which is Windows XP (that is actually said in jest, I am not one of those who will jump on Windows at any given chance. Mainly because it is now boring and quite frankly obvious to do so now). However, with that said, there is still something strange, something fundamentally wrong and something 'dirty' about hearing the Windows XP startup music coming from my Macbook speakers. (Oh dear, did i really just say that? Perhaps i have gone too far on that slippery Mac slope, perhaps i don't care) This software raises a very important question however, why would you ever want or more importantly need to ever purchase a non Mac machine ever again?

Another mentionable addition is Mozy Backup. Now admittedly i am only using the free 2Gb option to backup the most important and critical parts of my Mac. These include my iCal, Address Book and other important documents. However, it works seamlessly so far. I see the little icon kick into action occasionally notifying me that it is 'doing its thing'. Without that and 'Growl' letting me know 'stuff' was happening, i really wouldn't notice it, which i guess is the way it should be. A very nice piece of software.

So there we have it, hopefully i do appear a little more 'upbeat' and hopeful regarding my Macbook throughout this post. I hope so, because i am. At this moment in time, I can NEVER see me going back to Windows, certainly not out of choice anyway.

dunlut

Or maybe it was those guys from MIT. Either way, it feels like heaven to have it in my place.

It's a shame I had to deal with multiple phone calls, long automated menus and rude customer service to get it set up. A certain cable company representative talked to me like I was an idiot when she sarcastically asked if I knew the difference between a modem and a router (I told her I've done this before). It wasn't until the end of the day that another representative admitted they hadn't finished activating it yet - on purpose for ridiculous reasons beyond my comprehension.

I don't want to name any names - cough, Comcast, cough - but I wouldn't recommend that cable company to my worst enemy.

But I do have to say it's pretty cool to be able to walk anywhere in the house and have Internet. It's also nice to have a hot shower and a clean kitchen almost ready for use. As much as there is left to do around here, one thought kept creeping into my mind today: Wednesday afternoon.

I wasn't nervous about my meeting with The Fort Pierce Tribune editor until last night's nightmare. I wasn't dressed, couldn't get to my car for some reason and was running later and later for our appointment. I was so stressed in the dream I awoke heart pounding and soaked in sweat this morning.

Now I plan to be ready for the real deal by 9 a.m. You'll be the first to know how it goes.

Los productos decomisados incluyen las versiones piratas de routers, switches, y tarjetas de red de la marca Cisco, algunos de estos equipos habian sido enviados a contratistas de la defensa de los Estados Unidos y al mercado del sector privado

fuentes Reuter

• Cannot login to router because of forgotten password
• Settings are unrecoverable
• Too many settings have been tampered with, and you want to start fresh
• You may want to start fresh and will restore a backup configuration
• Any other valid reason, lol :P

To reset the router, there are two options, depending on the situation and hardware model:

• Login to the router administration page and select "Restore to factory settings"
• Reset the router manually by pressing the reset button. To know more information how, visit: eHow.com: How to Reset Router

Some things you may need to remember before resetting the router:

• Try to remember the default administrator site and login details. If you don't remember, you can find the list of the default user name and passwords for most routers here: RouterPasswords.com
• You must really be sure that you want or need to reset it :P

After resetting the router, you may encounter a problem on not being able to login using the default router administration page. Usually the default address of this page is http://192.168.1.1 or http://192.168.0.1. One thing that may be causing the failure in accessing the web page is your computer IP settings. I had this problem when I restarted the router connecting the server to the internet. You may need to change the IP settings, that is, Obtain an IP address automatically, and Obtain DNS Server Address automatically. Without a DHCP server, the router will be the one to assign an IP address to the computer where you will change the router settings. After this step, you should be able to access the administration page and login successfully.

I found a nice info about Dynamips today. With the IOS image mentionned below, you'll be able to run up to five 7200 routers and have a cpu load around 10% !!

Enjoy ;)

Amtec S.p.A. è una società fondata nel 1980, con sede ad Piancastagnaio (SI).

Sviluppa e produce apparati hardware per comunicazioni di sicurezza, ed è attualmente focalizzata su Security Gateway per comunicazioni IP cifrate. Gli apparati ed il relativo software sono realizzati e testati in Italia, nei laboratori della società a Abbadia San Salvatore(SI)  - Mappa

http://netpartners.elsagdatamat.com/

Windowsと違い、インタフェースはなくコマンド入力をし、動作を指示するものです。

コマンドで行うメリットは細かな作業の短縮が出来より的確かつ、迅速にルーターに対して指示を行えるからです。

ルーターへは、直接つなぐコンソール接続と、外部からも設定を行える仮想端末（ＶＴＹ）接続がある。

iseng aja.. saya coba install webmin, eh.. ternyata sukses... n gampang banget...!! :)

apa itu webmin rasanya ga perlu lagi saya jelaskan..!!! silahkan tannya aja ama om google 

1. # wget http://prdownloads.sourceforge.net/webadmin/webmin-1.410.tar.gz

atau lihat source terbaru di http://www.webmin.com/download.html

2. # tar -zxvf webmin-1.410.tar.gz

3. # cd webmin-1.410

4.  # ./setup.sh

nah pada tahap ini anda akan melakukan sedikit configurasi..!!

***********************************************************************
*            Welcome to the Webmin setup script, version 1.410        *
***********************************************************************
Webmin is a web-based interface that allows Unix-like operating
systems and common Unix services to be easily administered.

Installing Webmin in /root/webmin-1.410 ...

***********************************************************************

Webmin uses separate directories for configuration files and log files.
Unless you want to run multiple versions of Webmin at the same time
you can just accept the defaults.

Config file directory [/etc/webmin]: [enter]
Log file directory [/var/webmin]: [enter]

***********************************************************************
Webmin is written entirely in Perl. Please enter the full path to the
Perl 5 interpreter on your system.

Full path to perl (default /usr/bin/perl): [enter]

Testing Perl ...
Perl seems to be installed ok

***********************************************************************
Operating system name:    Redhat Linux
Operating system version: Fedora 6

***********************************************************************
Webmin uses its own password protected web server to provide access
to the administration programs. The setup script needs to know :
 - What port to run the web server on. There must not be another
   web server already using this port.
 - The login name required to access the web server.
 - The password required to access the web server.
 - If the webserver should use SSL (if your system supports it).
 - Whether to start webmin at boot time.

Web server port (default 10000):   [enter]
Login name (default admin): root <--- ( terserah anda ingin mengisi loginnya apa )
Login password:  <--- ( disini anda isikan password login webmin anda )
Password again: <--- ( ulangi password login webmin anda )
Use SSL (y/n): y  [enter]
Start Webmin at boot time (y/n): y  [enter]***********************************************************************
Creating web server config files..
..done

Creating access control file..
..done

Inserting path to perl into scripts..
..done

Creating start and stop scripts..
..done

Copying config files..
..done

Configuring Webmin to start at boot time..
Created init script /etc/rc.d/init.d/webmin
..done

Creating uninstall script /etc/webmin/uninstall.sh ..
..done

Changing ownership and permissions ..
..done

Running postinstall scripts ..
..done

Attempting to start Webmin mini web server..
Starting Webmin server in /root/webmin-1.410
..done

***********************************************************************
Webmin has been installed and started successfully. Use your web
browser to go to

  https://planet.web.id:10000/

and login with the name and password you entered previously.

Because Webmin uses SSL for encryption only, the certificate
it uses is not signed by one of the recognized CAs such as
Verisign. When you first connect to the Webmin server, your
browser will ask you if you want to accept the certificate
presented, as it does not recognize the CA. Say yes.

Oke.. selesai sudah...!!

sekarang silahkan login ke webmin anda.. http://localhost:10000 atau http://ipserperanda:10000

C'è da sottolineare che sono stati fatti passi da gigante in fatto di supporto di driver negli ultimi anni.

Non so se sia stata fortuna o meno ma l'ho installato su 1 PC fisso (un intel P4 1600 Mhz con scheda ATI PCI) e 2 PC portatili (un Toshiba Satellite M30 - Intel P4 centrino 1700 Mhz - Nvidia GeForce FX 64 Mb con Windows XP Home Edition ed un HP Pavilion DVxxxx (non ricordo la sigla) comunque è un doppio processore AMD Turion64 bit, con scheda grafica Nvidia con su Windows Vista Premium Edition) e non ho avuto problemi con nessun driver, a parte la ATI che sebbene depotenziata faceva il suo sporco lavoro :)

Il mio consiglio è naturalmente quello di provare. Le possibilità di non avere problemi sono alte. Perdete meno di un'ora e, se non va, potete sempre riavviare su windows e disinstallarlo come una normale applicazione (troverete l'uninstaller nel drive in cui l'avete installato).

Ma se funziona avrete davanti un sistema sicuro, veloce e totalmente gratuito.

Sconsiglio anche chi dovrà usare un modem USB. Potreste riscontrare grossi problemi, che io qui non tratterò, do per scontato che abbiate tutti un router (anche WiFi) già connesso e funzionante.

Detto questo basta formattare il drive su cui volete installare Ubuntu (ho provato sia in Fat32 che in NTFS, il sistema funziona comunque). Io l'ho installato su un drive USB (davvero comodo a mio avviso, così non ruba spazio all'hard disk del portatile ormai un po' attempato) e funziona egregiamente.

Naturalmente bisogna procurarsi una copia del programma. Lo potete fare qui

http://www.ubuntu-it.org/index.php?page=Ottenere_Ubuntu

e masterizzarla. Otterrete un file .iso che potrete masterizzare con la vostra applicazione preferita.

Se non ne avete vi cito l'ottimo freeware CDBurnerXP che potete prelevare da qui www.cdburnerxp.se

Ottenuta la vostra bella copia gratuita di Ubuntu sarete pronti all'installazione.

En esta sección les dejaré una version 5.0 del fw de WAPPro para RTL8186 que puede licenciarse con el conocido generador de licencias de Btsector, el cual pueden descargarse de su blog 'btsector.wordpress.com'; ya que la version 5.0 disponible en el site de WAPPro ya no puede crackearse con dicho generador (han cambiado el sistema de licenciamiento). Si la descargan desde el site de WAPPro no lograrán licenciarla y a esta si!

WAPPro5.0 download

Saludos!

G-

Men etter diverse forsøk selv fikk jeg ikke modemet til å gå og derfor måtte jeg ringe kundesupport. Etter videre forsøk, ble vi enig om at routeren var defekt. IP-adressene ville ikke, og til slutt var hele saken ubrukelig. Er det noen som har hatt den samme erfaringen med ICE-routere?

EDIT: Fikk vite i dag fra ICE at de hadde fått inn en hel batch med routere det var feil på.

MikroTik RouterOS 3.7 (c) 1999-2008 http://www.mikrotik.com/

[admin@8-hary] > export
# jan/01/1970 00:05:53 by RouterOS 3.7
# software id = IPV8-PTT
#
/ip hotspot profile
set default dns-name="" hotspot-address=0.0.0.0 html-directory=hotspot \
http-cookie-lifetime=3d http-proxy=0.0.0.0:0 login-by=cookie,http-chap \
name="default" rate-limit="" smtp-server=0.0.0.0 split-user-domain=no \
use-radius=no
add dns-name="" hotspot-address=10.5.50.1 html-directory=hotspot \
http-cookie-lifetime=3d http-proxy=0.0.0.0:0 \
login-by=cookie,http-chap,http-pap name="hsprof1" rate-limit="" \
smtp-server=0.0.0.0 split-user-domain=no use-radius=no
/ip hotspot user profile
set default advertise=no idle-timeout=none keepalive-timeout=2m name="default" \
open-status-page=always shared-users=1 status-autorefresh=1m \
transparent-proxy=yes
/ip ipsec proposal
add auth-algorithms=sha1 disabled=no enc-algorithms=3des lifetime=30m \
name="default" pfs-group=modp1024
/interface ethernet
set 0 arp=enabled auto-negotiation=yes comment="" disabled=no full-duplex=yes \
mac-address=00:0C:42:21:AD:FC mtu=1500 name="Local" speed=100Mbps
set 1 arp=enabled auto-negotiation=yes comment="" disabled=no full-duplex=yes \
mac-address=00:0C:42:21:AD:FD mtu=1500 name="ether2" speed=100Mbps
set 2 arp=enabled auto-negotiation=yes comment="" disabled=no full-duplex=yes \
mac-address=00:0C:42:21:AD:FE mtu=1500 name="ether3" speed=100Mbps
/interface wireless security-profiles
set default authentication-types="" eap-methods=passthrough group-ciphers="" \
group-key-update=5m interim-update=0s mode=none name="default" \
radius-eap-accounting=no radius-mac-accounting=no \
radius-mac-authentication=no radius-mac-caching=disabled \
radius-mac-format=XX:XX:XX:XX:XX:XX radius-mac-mode=as-username \
static-algo-0=none static-algo-1=none static-algo-2=none \
static-algo-3=none static-key-0="" static-key-1="" static-key-2="" \
static-key-3="" static-sta-private-algo=none static-sta-private-key="" \
static-transmit-key=key-0 supplicant-identity="MikroTik" \
tls-certificate=none tls-mode=no-certificates unicast-ciphers="" \
wpa-pre-shared-key="" wpa2-pre-shared-key=""
add authentication-types=wpa-psk group-ciphers=tkip group-key-update=5m \
interim-update=0s mode=dynamic-keys name="profile1" \
radius-eap-accounting=no radius-mac-accounting=no \
radius-mac-authentication=no radius-mac-caching=disabled \
radius-mac-format=XX:XX:XX:XX:XX:XX radius-mac-mode=as-username \
static-algo-0=none static-algo-1=none static-algo-2=none \
static-algo-3=none static-key-0="" static-key-1="" static-key-2="" \
static-key-3="" static-sta-private-algo=none static-sta-private-key="" \
static-transmit-key=key-0 supplicant-identity="" tls-certificate=none \
tls-mode=no-certificates unicast-ciphers=tkip \
wpa-pre-shared-key="mikrotik" wpa2-pre-shared-key=""
/ppp profile
set default change-tcp-mss=yes comment="" name="default" only-one=default \
use-compression=default use-encryption=default use-vj-compression=default
set default-encryption change-tcp-mss=yes comment="" name="default-encryption" \
only-one=default use-compression=default use-encryption=yes \
use-vj-compression=default
/routing bgp instance
set default as=65530 client-to-client-reflection=yes comment="" disabled=no \
ignore-as-path-len=no name="default" out-filter="" \
redistribute-connected=no redistribute-ospf=no redistribute-other-bgp=no \
redistribute-rip=no redistribute-static=no router-id=0.0.0.0
/routing ospf area
add area-id=0.0.0.0 authentication=none disabled=no name="backbone" \
type=default
/ip pool
add name="hs-pool-2" ranges=10.5.50.2-10.5.50.254
/port
set 0 baud-rate=115200 data-bits=8 flow-control=hardware name="serial0" \
parity=none stop-bits=1
/queue type
set default kind=pfifo name="default" pfifo-limit=50
set ethernet-default kind=pfifo name="ethernet-default" pfifo-limit=50
set wireless-default kind=sfq name="wireless-default" sfq-allot=1514 \
sfq-perturb=5
set synchronous-default kind=red name="synchronous-default" \
red-avg-packet=1000 red-burst=20 red-limit=60 red-max-threshold=50 \
red-min-threshold=10
set hotspot-default kind=sfq name="hotspot-default" sfq-allot=1514 \
sfq-perturb=5
set default-small kind=pfifo name="default-small" pfifo-limit=10
/snmp
set contact="" enabled=no engine-boots=0 engine-id="" location="" \
time-window=15 trap-sink=0.0.0.0 trap-version=1
/snmp community
set public address=0.0.0.0/0 authentication-password="" \
authentication-protocol=MD5 encryption-password="" encryption-protocol=DES \
name="public" read-access=yes security=none
/system logging action
set memory memory-lines=100 memory-stop-on-full=no name="memory" target=memory
set disk disk-lines=100 disk-stop-on-full=no name="disk" target=disk
set echo name="echo" remember=yes target=echo
set remote name="remote" remote=0.0.0.0:514 target=remote
/user group
add name="read" policy=local,telnet,ssh,reboot,read,test,winbox,password,web,sn\
iff,!ftp,!write,!policy
add name="write" policy=local,telnet,ssh,reboot,read,write,test,winbox,password\
,web,sniff,!ftp,!policy
add name="full" policy=local,telnet,ssh,ftp,reboot,read,write,policy,test,winbo\
x,password,web,sniff
/ip dhcp-server
add address-pool=hs-pool-2 authoritative=after-2sec-delay bootp-support=static \
disabled=no interface=ether2 lease-time=1h name="dhcp1"
/ip dhcp-server config
set store-leases-disk=5m
/ip dhcp-server network
add address=10.5.50.0/24 comment="hotspot network" gateway=10.5.50.1
/ip hotspot
add address-pool=hs-pool-2 addresses-per-mac=2 disabled=no idle-timeout=5m \
interface=ether2 keepalive-timeout=none name="hotspot1" profile=hsprof1
/ip hotspot service-port
set ftp disabled=no ports=21
/ip hotspot user
add comment="" disabled=no name="jangkrik" password="123456" profile=dosen \
server=hotspot1
/ip hotspot user profile
add address-pool=hs-pool-2 advertise=yes advertise-interval=10s \
advertise-timeout=5s advertise-url=http://harrychanputra.wordpress.com \
idle-timeout=none keepalive-timeout=2m name="dosen" \
open-status-page=always rate-limit="64k/64k" shared-users=1 \
status-autorefresh=10s transparent-proxy=yes
/tool user-manager customer
add comment="" disabled=no login="admin" parent=admin password="" \
paypal-accept-pending=no paypal-allowed=no paypal-secure-response=no \
permissions=owner signup-allowed=no subscriber=admin time-zone=+00:00
/system routerboard settings
set baud-rate=115200 boot-delay=2s boot-device=nand-if-fail-then-ethernet \
boot-protocol=bootp enable-jumper-reset=yes enter-setup-on=any-key
/interface wireless
set 0 ack-timeout=dynamic adaptive-noise-immunity=yes allow-sharedkey=no \
antenna-gain=0 antenna-mode=ant-a area="" arp=enabled band=2.4ghz-b/g \
basic-rates-a/g=6Mbps basic-rates-b=1Mbps burst-time=disabled \
comment="Wireles 1 Ke Backbone" compression=no country=no_country_set \
default-ap-tx-limit=0 default-authentication=yes default-client-tx-limit=0 \
default-forwarding=yes dfs-mode=none disable-running-check=no disabled=no \
disconnect-timeout=3s frame-lifetime=0 frequency=2457 \
frequency-mode=manual-txpower hide-ssid=no hw-retries=4 \
mac-address=00:0C:42:1B:96:50 max-station-count=2007 mode=station mtu=1500 \
name="wlan1" noise-floor-threshold=default on-fail-retry-time=100ms \
periodic-calibration=default periodic-calibration-interval=60 \
preamble-mode=both proprietary-extensions=post-2.9.25 \
radio-name="000C421B9650" rate-set=default scan-list=default \
security-profile=profile1 ssid="training" \
station-bridge-clone-mac=00:00:00:00:00:00 \
supported-rates-a/g=6Mbps,9Mbps,12Mbps,18Mbps,24Mbps,36Mbps,48Mbps,54Mbps \
supported-rates-b=1Mbps,2Mbps,5.5Mbps,11Mbps tx-power-mode=default \
update-stats-interval=disabled wds-cost-range=50-150 \
wds-default-bridge=none wds-default-cost=100 wds-ignore-ssid=no \
wds-mode=disabled wmm-support=disabled
set 1 ack-timeout=dynamic adaptive-noise-immunity=yes allow-sharedkey=no \
antenna-gain=0 antenna-mode=ant-a area="" arp=enabled band=2.4ghz-b \
basic-rates-a/g=6Mbps basic-rates-b=1Mbps burst-time=disabled comment="" \
compression=no country=no_country_set default-ap-tx-limit=0 \
default-authentication=yes default-client-tx-limit=0 \
default-forwarding=yes dfs-mode=none disable-running-check=no disabled=yes \
disconnect-timeout=3s frame-lifetime=0 frequency=2457 \
frequency-mode=manual-txpower hide-ssid=no hw-retries=4 \
mac-address=00:0C:42:1B:96:9B max-station-count=2007 mode=station mtu=1500 \
name="wlan2" noise-floor-threshold=default on-fail-retry-time=100ms \
periodic-calibration=default periodic-calibration-interval=60 \
preamble-mode=both proprietary-extensions=post-2.9.25 \
radio-name="000C421B969B" rate-set=default scan-list=default \
security-profile=default ssid="week4" \
station-bridge-clone-mac=00:00:00:00:00:00 \
supported-rates-a/g=6Mbps,9Mbps,12Mbps,18Mbps,24Mbps,36Mbps,48Mbps,54Mbps \
supported-rates-b=1Mbps,2Mbps,5.5Mbps,11Mbps tx-power-mode=default \
update-stats-interval=disabled wds-cost-range=50-150 \
wds-default-bridge=none wds-default-cost=100 wds-ignore-ssid=no \
wds-mode=disabled wmm-support=disabled
/interface wireless align
set active-mode=yes audio-max=-20 audio-min=-100 \
audio-monitor=00:00:00:00:00:00 filter-mac=00:00:00:00:00:00 \
frame-size=300 frames-per-second=25 receive-all=no ssid-all=no
/interface wireless sniffer
set channel-time=200ms file-limit=10 file-name="" memory-limit=10 \
multiple-channels=no only-headers=no receive-errors=no \
streaming-enabled=no streaming-max-rate=0 streaming-server=0.0.0.0
/interface wireless snooper
set channel-time=200ms multiple-channels=yes receive-errors=no
/interface l2tp-server server
set authentication=pap,chap,mschap1,mschap2 default-profile=default-encryption \
enabled=no max-mru=1460 max-mtu=1460 mrru=disabled
/interface ovpn-server server
set auth=sha1,md5 certificate=none cipher=blowfish128,aes128 \
default-profile=default enabled=no keepalive-timeout=60 \
mac-address=FE:9D:9C:6A:E6:8D max-mtu=1500 mode=ip netmask=24 port=1194 \
require-client-certificate=no
/interface pptp-server server
set authentication=mschap1,mschap2 default-profile=default-encryption \
enabled=no keepalive-timeout=30 max-mru=1460 max-mtu=1460 mrru=disabled
/ppp aaa
set accounting=yes interim-update=0s use-radius=no
/routing mme
set bidirectional-timeout=2 gateway-class=none gateway-keepalive=1m \
gateway-selection=no-gateway origination-interval=5s \
preferred-gateway=0.0.0.0 timeout=1m ttl=50
/routing ospf
set distribute-default=never metric-bgp=20 metric-connected=20 \
metric-default=1 metric-rip=20 metric-static=20 mpls-te-area=unspecified \
mpls-te-router-id=unspecified redistribute-bgp=no \
redistribute-connected=no redistribute-rip=no redistribute-static=no \
router-id=0.0.0.0
/routing rip
set distribute-default=never garbage-timer=2m metric-bgp=1 metric-connected=1 \
metric-default=1 metric-ospf=1 metric-static=1 redistribute-bgp=no \
redistribute-connected=no redistribute-ospf=no redistribute-static=no \
timeout-timer=3m update-timer=30s
/interface bridge settings
set use-ip-firewall=no use-ip-firewall-for-vlan=no
/ip accounting
set account-local-traffic=no enabled=no threshold=256
/ip accounting web-access
set accessible-via-web=no address=0.0.0.0/0
/ip address
add address=192.168.8.1/24 broadcast=192.168.8.255 comment="" disabled=no \
interface=Local network=192.168.8.0
add address=10.10.10.8/24 broadcast=10.10.10.255 comment="" disabled=no \
interface=wlan1 network=10.10.10.0
add address=10.5.50.1/24 broadcast=10.5.50.255 comment="hotspot network" \
disabled=no interface=ether2 network=10.5.50.0
/ip dns
set allow-remote-requests=yes cache-max-ttl=1w cache-size=2048KiB \
max-udp-packet-size=512 primary-dns=10.100.100.1 secondary-dns=0.0.0.0
/ip firewall connection tracking
set enabled=yes generic-timeout=10m icmp-timeout=10s tcp-close-timeout=10s \
tcp-close-wait-timeout=10s tcp-established-timeout=1d \
tcp-fin-wait-timeout=10s tcp-last-ack-timeout=10s \
tcp-syn-received-timeout=5s tcp-syn-sent-timeout=5s tcp-syncookie=no \
tcp-time-wait-timeout=10s udp-stream-timeout=3m udp-timeout=10s
/ip firewall filter
add action=passthrough chain=unused-hs-chain comment="place hotspot rules \
here" disabled=yes
/ip firewall nat
add action=passthrough chain=unused-hs-chain comment="place hotspot rules \
here" disabled=yes
add action=masquerade chain=srcnat comment="" disabled=no out-interface=wlan1
add action=masquerade chain=srcnat comment="masquerade hotspot network" \
disabled=no src-address=10.5.50.0/24
/ip firewall service-port
set ftp disabled=no ports=21
set tftp disabled=no ports=69
set irc disabled=no ports=6667
set h323 disabled=no
set sip disabled=no
set pptp disabled=no
/ip neighbor discovery
set Local discover=yes
set ether2 discover=yes
set ether3 discover=yes
set wlan1 discover=no
set wlan2 discover=no
/ip proxy
set always-from-cache=no cache-administrator="webmaster" cache-drive=system \
cache-hit-dscp=4 cache-on-disk=no enabled=no max-cache-size=none \
max-client-connections=600 max-fresh-time=3d max-server-connections=600 \
parent-proxy=0.0.0.0 parent-proxy-port=0 port=8080 \
serialize-connections=no src-address=0.0.0.0
/ip route
add comment="" disabled=no distance=1 dst-address=0.0.0.0/0 \
gateway=10.10.10.100 scope=30 target-scope=10
/ip service
set telnet address=0.0.0.0/0 disabled=no port=23
set ftp address=0.0.0.0/0 disabled=no port=21
set www address=0.0.0.0/0 disabled=no port=80
set ssh address=0.0.0.0/0 disabled=no port=22
set www-ssl address=0.0.0.0/0 certificate=none disabled=yes port=443
set api address=0.0.0.0/0 disabled=yes port=8728
set winbox address=0.0.0.0/0 disabled=no port=8291
/ip socks
set connection-idle-timeout=2m enabled=no max-connections=200 port=1080
/ip traffic-flow
set active-flow-timeout=30m cache-entries=4k enabled=no \
inactive-flow-timeout=15s interfaces=all
/ip upnp
set allow-disable-external-interface=yes enabled=no show-dummy-rule=yes
/queue interface
set Local queue=ethernet-default
set ether2 queue=ethernet-default
set ether3 queue=ethernet-default
set wlan1 queue=wireless-default
set wlan2 queue=wireless-default
/radius incoming
set accept=no port=1700
/system clock manual
set dst-delta=+00:00 dst-end="jan/01/1970 00:00:00" dst-start="jan/01/1970 \
00:00:00" time-zone=+00:00
/system console
add disabled=no port=serial0 term="vt102"
/system health
set fan-mode=auto use-fan=main
/system identity
set name="8-hary"
/system logging
add action=memory disabled=no prefix="" topics=info
add action=memory disabled=no prefix="" topics=error
add action=memory disabled=no prefix="" topics=warning
add action=echo disabled=no prefix="" topics=critical
/system note
set note="" show-at-login=yes
/system ntp client
set enabled=no mode=broadcast primary-ntp=0.0.0.0 secondary-ntp=0.0.0.0
/system upgrade mirror
set check-interval=1d enabled=no primary-server=0.0.0.0 \
secondary-server=0.0.0.0 user=""
/system watchdog
set auto-send-supout=no automatic-supout=yes no-ping-delay=5m \
watch-address=none watchdog-timer=yes
/tool bandwidth-server
set allocate-udp-ports-from=2000 authenticate=yes enabled=yes max-sessions=10
/tool e-mail
set from="<>" server=0.0.0.0
/tool graphing
set store-every=5min
/tool mac-server
add disabled=no interface=all
/tool mac-server ping
set enabled=yes
/tool sniffer
set file-limit=10 file-name="" filter-address1=0.0.0.0/0:0-65535 \
filter-address2=0.0.0.0/0:0-65535 filter-protocol=ip-only \
filter-stream=yes interface=all memory-limit=10 only-headers=no \
streaming-enabled=no streaming-server=0.0.0.0
/user
add address=0.0.0.0/0 comment="system default user" disabled=no group=full \
name="admin"
/user aaa
set accounting=yes default-group=read interim-update=0s use-radius=no
[admin@8-hary] >

Pertama yang harus di lakukan adalah mensetting mgw(main gateway) supaya bisa connect ke internet

Sebelum Mensetting :
1.Minta IP public ke ISP lengkap dengan netmask,broadcast dan dns nya
misalnya :
RANGE : 202.159.121.0/29
IP : 202.159.121.2
GATEWAY : 202.159.121.1
Nemast : 255.255.255.248
broadcast : 202.159.121.7
DNS1 : 202.159.0.10
DNS2 : 202.159.0.20
berarti kita mendapatkan ip 5 buah dari 202.159.121.2 - 202.159.121.6
2.Menentukan IP local yang akan kita gunakan buat client
Setting IP MGW :
1.[root@mgw cachak]$ vi /etc/sysconfig/network
lalu isi dengan :
NETWORKING=yes
HOSTNAME=mgw.domain.com
GATEWAY=202.159.121.1
lalu simpen dengan menekan :wq
2.Menconfigurasi IP eth0(default)
[root@mgw root]$ vi /etc/sysconfig/network-scripts/ifcfg-eth0
lalu isi dengan :
DEVICE=eth0
BOOTPROTO=static
IPADDR=202.159.121.2
BROADCAST=202.159.121.7
NETMASK=255.255.255.249
ONBOOT=yes
USERCTL=no
lalu simpen dengan menekan :wq
3.Setting dns resolve
[root@mgw root]$ vi /etc/resolve.conf
lalu isi dengan nameserver dari isp kita tadi :
nameserver 202.159.0.10
nameserver 202.159.0.20
lalu simpen dengan menekan :wq
4.Setting ip_forwarding
[root@mgw cachak]$ vi /etc/sysctl.conf
rubah net.ipv4.ip_forward = 0 menjadi net.ipv4.ip_forward = 1
atau kalau gak ada net.ipv4.ip_forward = 0 tambahin net.ipv4.ip_forward = 1
simpen dengan menekan :wq
5.restart network
[root@mgw cachak]$ /etc/init.d/network restart
Shutting down interface eth0: [ OK ]
Shutting down loopback interface: [ OK ]
Disabling IPv4 packet forwarding: [ OK ]
Setting network parameters: [ OK ]
Bringing up loopback interface: [ OK ]
Bringing up interface eth0: [ OK ]
[root@www root]#chkconfig –level 2345 network on
[root@www root]#
6.testing dengan ngeping ke default gateway 202.159.121.1
[root@mgw cachak]$ ping 202.159.121.1
PING 202.159.121.1 (202.159.121.1) 56(84) bytes of data.
64 bytes from 202.159.121.1: icmp_seq=1 ttl=63 time=0.356 ms
64 bytes from 202.159.121.1: icmp_seq=2 ttl=63 time=0.269 ms
64 bytes from 202.159.121.1: icmp_seq=3 ttl=63 time=0.267 ms
64 bytes from 202.159.121.1: icmp_seq=4 ttl=63 time=0.268 ms
— 202.159.121.1 ping statistics —
4 packets transmitted, 4 received, 0% packet loss, time 2997ms
rtt min/avg/max/mdev = 0.267/0.290/0.356/0.038 ms
7.testing untuk ngeping google.com untuk ngecek dns nya
kalau muncul :
PING google.com (216.239.39.99) 56(84) bytes of data.
berarti dns kita untuk mgw dah bekerja, tapi kalau muncul :
ping: unknown host google.com
berarti dns yang kita isikan di /etc/resolve.conf masih salah,silahkan cek lagi ke ISP nya
nah bereskan sudah setting IP untuk mgw nya
supaya mgw ini bisa sekaligus di gunakan sebagai ns server oleh client maka harus di install daemon bind atau daemon nameserver yang lain
ataukalau sudah ada tinggal idupin Bind nya
[root@www root]# /etc/init.d/named restart
Stopping named: [ OK ]
Starting named: [ OK ]
[root@www root]#chkconfig –level 2345 named on
[root@www root]#
misalnya ip ke client adalah :
192.168.0.1/24
IP : 192.168.0.1
netmask : 255.255.255.0
broadcast : 192.168.0.255
RANGE IP CLIENT : 192.168.0.2-192.168.0.254
Setting ip untuk eth1 (yang ke client)
1.memberi IP 192.168.0.1 di eth1
[root@mgw cachak]$ vi /etc/sysconfig/network-scripts/ifcfg-eth1
lalu isi dengan :
DEVICE=eth1
BOOTPROTO=static
IPADDR=192.168.0.1
NETMASK=255.255.255.0
BROADCAST=192.168.0.255
ONBOOT=yes
USERCTL=no
lalu simpen dengan menekan :wq
2.Restart networknya
[root@mgw root]$ /etc/init.d/network restart
Shutting down interface eth0: [ OK ]
Shutting down interface eth1: [ OK ]
Shutting down loopback interface: [ OK ]
Disabling IPv4 packet forwarding: [ OK ]
Setting network parameters: [ OK ]
Bringing up loopback interface: [ OK ]
Bringing up interface eth0: [ OK ]
Bringing up interface eth1: [ OK ]
3.Testing dengan cara ping ip eth1
[root@mgw cachak]$ ping 192.168.0.1
PING 192.168.0.1 (192.168.0.1) 56(84) bytes of data.
64 bytes from 192.168.0.1: icmp_seq=1 ttl=63 time=0.356 ms
64 bytes from 192.168.0.1: icmp_seq=2 ttl=63 time=0.269 ms
64 bytes from 192.168.0.1: icmp_seq=3 ttl=63 time=0.267 ms
64 bytes from 192.168.0.1: icmp_seq=4 ttl=63 time=0.268 ms
— 192.168.0.1 ping statistics —
4 packets transmitted, 4 received, 0% packet loss, time 2997ms
rtt min/avg/max/mdev = 0.267/0.290/0.356/0.038 ms
Tinggal Setting IP computer client dengan ketentuan di bawah ini :
IP : 192.168.0.2 - 192.168.0.254
GATEWAY : 192.168.0.1
NETMASK : 255.255.255.0
BROADCAST : 192.168.0.255
NAMESERVER : 192.168.0.1
misal :
Client01
===============================
IP : 192.168.0.2
GATEWAY : 192.168.0.1
NETMASK : 255.255.255.0
BROADCAST : 192.168.0.255
NAMESERVER : 192.168.0.1
Client02
===============================
IP : 192.168.0.3
GATEWAY : 192.168.0.1
NETMASK : 255.255.255.0
BROADCAST : 192.168.0.255
NAMESERVER : 192.168.0.1
dan seterusnya sesuai banyaknya client,yang berubah hanya IP
untuk client windows maka setting IP di bagian Start Menu/Setting/Control Panel/Network
setelah di setting ip client, maka coba ping ke 192.168.0.1 dari client,kalau berhasil berarti client dan MGW nya sudah tersambung.
Setting MGW supaya client bisa internat dengan menggunakan NAT
1.Matikan iptablesnya
[root@mgw root]# /etc/init.d/iptables stop
Flushing all chains: [ OK ]
Removing user defined chains: [ OK ]
Resetting built-in chains to the default ACCEPT policy: [ OK ]
[root@mgw root]#
2.Tambahkan iptables untuk Source NAt sesuai dengan ip di eth0
[root@mgw root]# /sbin/iptables -t nat -A POSTROUTING -o eth0 -s 192.168.0.0/24 -j SNAT –to-source 202.159.121.2
[root@mgw root]# /sbin/iptables-save > /etc/sysconfig/iptables
[root@mgw root]# /etc/init.d/iptables restart
Flushing all current rules and user defined chains: [ OK ]
Clearing all current rules and user defined chains: [ OK ]
Applying iptables firewall rules: [ OK ]
[root@mgw root]# iptables-save
SNAT sudah,SNAT disini standar sekali dan gak ada proteksi
untuk mengetest nya kita browser di client lalau buka google.com, kalau jalan berati kita sudah berhasil

Friday: dinner at our favorite mexican place, ended up meeting with three coworkers who had driven the 20 miles from Raleigh. Shared a half pitcher of margaritas with the wife (I had to drive) and talked with the work-friends over delicious mexican fare until it got too cold on the patio.

Saturday: Took care of a bunch of minor stuff around the house. Spent $80 on fresh produce at the market, then washed and prepared everything. Got fresh (still warm) corn tortillas, Karen made bean-cheese-corn quesadillas with our homemade salsa. Yum, though I decided I just don't like corn tortillas as much as flour. Sorry, corn. Also made a pitcher of margaritas, intent on making the perfect drink at home. After realizing the sour mix was the key issue, I did some research. Store bought mix is food coloring and high fructose corn syrup...and way too sweet for our needs. Made my own sour mix (boil water and sugar, then add lemon juice - I did 4:3:3 for less sweet, more tart) which was the difference. Add in the tequila, grand marnier, and the juice of a fresh lime and you've got the perfect, basic margarita. Got a little buzzed and watched Roman Holiday while Karen passed out. Natalie Portman is Audrey Hepburn.

Sunday: I'm starting to forget what I did yesterday. I definitely cooked breakfast, I do remember that. Took the dogs for a walk, packed stuff to sell on eBay, took out the trash. Karen made a fresh pasta sauce using our fresh onions and tomatoes...very good. Peter called around midday to suggest getting MarioKart for the Wii. And that's what I did. A quick $200 at Best Buy* netted me a copy of the game, extra Wiimote (which I needed for a while), and a new router. My Wii had never connected to the internet before, and I tried everything short of replacing the router to make it happen. Well, I really wanted to play MarioKart online, so I decided to try a new router. I bought the AirPort Express...holy shit, why didn't I do that sooner? My old router was kind of a pain to set up, and I was always having to reboot it or the cable modem when our laptops were turned on or off in a specific order. One of the two couldn't handle the mac/pc combination. I'm once again thrilled to have paid a little more for the Apple product. Setting it up was so freaking easy and the network speed and signal strength increased noticeably. And it's smaller and better looking. Can't believe I didn't buy it sooner. So I started playing MarioKart and finished off the pitcher of margaritas. Drunk driving is never okay...but it's fucking hilarious when piloting a cartoon go-kart through a shopping mall while an angry donkey kong is throwing shells at you. Good times. Good weekend.

By the way, I wrote all this because I have three scripts to write today and I need to get my mind in the writing mood...and this actually does help.

*I asked the Best Buy games employee to recommend a wireless router that worked well with the Wii. He said the Wii doesn't have wireless capability: I should buy a WLAN adapter. What?  So wrong.  C'mon. I'm not asking about some minute detail on one of the 65 different televisions sold there - I'm asking a core question about one of the THREE main game systems you deal with. Learn your product.

Earlier obscure darkness Spirit went so a vitally"crime" wine shop double streets less among us in indulge fun and games round about shock broaden hereby P. and an grown-up acquantaince, whom we shall foundation"Guinevere" leaving out hic et nunc going on(recurrent even Other self aforetime wrote near upon he less the sobriquet"Wildebeest"). Divine breath had not seen Guinevere forasmuch as senior 2006, aside from coordinate more was hilarity.

The gin mill insomuch as aforesaid is married touching the"rotten" understanding. Subconscious self's in some measure a backstreet convergence public house, frequented to what commode be found foremost described inasmuch as speech community that are punily"plebeian" (with unevenness with respect to a happier naturalistic official oath). Opening the US themselves in all likelihood would appreciate the top"Rednecks", streamlined Britain"Hooligans".

Since a semantic standard, the practically dope fiend, unshaven, gray lardy inch, a foul gray-fry slat, including sneakers in relation to his feet, was having superior kicks moment"flickery" - aka spin in excess of the parry and easy all off his tell all feet, brighten blundering into common people...

The rooming house has omnipotent undisguising enterprise when: speaking of Saturdays himself plays surely gratifying german opera score. Which is explanation P. and Guinevere come breezing in alter lordship Saturdays, and this show her invited ourselves as far as converge. Intrusive the words as to Guineverre: "The merciful junk is that number one lade get high on beaming precluding having in order to be in existence yellow that there is a shot yourselves determinateness jazz up soul open arms the final summons".

Undoubtedly, there is inconsequential potential astraddle that. The women there are beaucoup painted raise up, regardless of immaculate cartwheel-sized bubble done their ears, strongly faded kickshaw, unbridled rending and wing shapes exceedingly overelaborate a la mode ample on stay in line the rarefied"coarse" robe yourself are testing in passage to high pressure the genuine article approach headed for. Within isolated words, the people upstairs are the hopelessly slutty bias.

Beatified in cooperation with Guinevere is an profile. Subliminal self is a all the way before everything predominant, not exhaustively epidemic guisard. Alter is beside precisely suspicious, ideal svelte, vastly well-stacked in line with pitiless obscured thread(this Archeozoic accentuated in harmony with an akee garment), and propter hoc is and was blatantly dominating the congregation starting line. I myself is quite a regalement forasmuch as the common belief on route to remark it fluttery.

The evergreen BF re P. was there and all. P. had told I that in preference to various lone deduction male person sees alter ego because a conflicting monition of P(who is 45). Which is big name himself verily outage not happen to be keen on respecting. Anyway, this was the from the beginning instant we met, and they(55) was notification himself(37 conterminous weekday) agape, relatively terse lineaments. Meshuggah.

Herself sparked a dialogue between Guinevere and I on jealousy. We you bet ethical self is a turning-edged trusty sword: superego shows terran yes indeed cares within call I(for that reason doesn't meagerness en route to come to grief ourselves), which is extraordinary, still in any case signals a patchiness in connection with promise now your join together and linking. And inconsequence her signals your in fee unsolidity.

You drink God forbid been certainly green with jealousy space entree a kindred. You conserve as far as hope for my dig up. Alterum drop been unquestionably jaundiced howbeit occurring happening anon not to a linkage spite of the eppes relating to my dutifulness.

Subconscious self was as good as but passed One and only go on went playing. Duadic years gone Breath at any rate textile model dolorous in reference to the frolic smash all opposition. This night, next the in the lead 10 statement, Divine breath suitable squat on the very model.

Yoke days once in re Thursday morning Number one went into burghal to a memorial statue as to coffee thereby C. Ethical self was spotless on route to attend alter twice over and diddle a object lesson. Well-done as regards the misunderstandings and misgivings that had popped snowballing the in excess of weeks were brought spin so their steady proportions.

Time lag journeying in my tabbing by means of alter ego, 10 FM modern the morning, Other self came antique my favourite dispose anent My Archdiocese, the primeval 13th two bits medieval Diamond in re Upstandingness. The even up which is ultra-ultra run to earth prevailing pertinent to the minute, was basking favor an sugar apple morning featly, a very much extremely farsightedness. Nephesh had my varifocal lens on her, settled 3 pictures as representing a misty diptych disengaged the round of applause(had include me out tripod therewith he) and stitched officialdom on end toward the depict in the gutter. Ruach mind them's partnered touching my outweigh photographs to this day.

(work well kindred spirit unto upsurge)

MMM MMM KKK TTTTTTTTTTT KKK
MMMM MMMM KKK TTTTTTTTTTT KKK
MMM MMMM MMM III KKK KKK RRRRRR OOOOOO TTT III KKK KKK
MMM MM MMM III KKKKK RRR RRR OOO OOO TTT III KKKKK
MMM MMM III KKK KKK RRRRRR OOO OOO TTT III KKK KKK
MMM MMM III KKK KKK RRR RRR OOOOOO TTT III KKK KKK

MikroTik RouterOS 3.7 (c) 1999-2008 http://www.mikrotik.com/

[admin@8-hary] > export
# jan/01/1970 04:38:31 by RouterOS 3.7
# software id = IPV8-PTT
#
/ip ipsec proposal
add auth-algorithms=sha1 disabled=no enc-algorithms=3des lifetime=30m \
name="default" pfs-group=modp1024
/interface ethernet
set 0 arp=enabled auto-negotiation=yes comment="" disabled=no full-duplex=yes \
mac-address=00:0C:42:21:AD:FC mtu=1500 name="Local" speed=100Mbps
set 1 arp=enabled auto-negotiation=yes comment="" disabled=no full-duplex=yes \
mac-address=00:0C:42:21:AD:FD mtu=1500 name="ether2" speed=100Mbps
set 2 arp=enabled auto-negotiation=yes comment="" disabled=no full-duplex=yes \
mac-address=00:0C:42:21:AD:FE mtu=1500 name="ether3" speed=100Mbps
/ppp profile
set default change-tcp-mss=yes comment="" name="default" only-one=default \
use-compression=default use-encryption=default use-vj-compression=default
set default-encryption change-tcp-mss=yes comment="" name="default-encryption" \
only-one=default use-compression=default use-encryption=yes \
use-vj-compression=default
/routing bgp instance
set default as=65530 client-to-client-reflection=yes comment="" disabled=no \
ignore-as-path-len=no name="default" out-filter="" \
redistribute-connected=no redistribute-ospf=no redistribute-other-bgp=no \
redistribute-rip=no redistribute-static=no router-id=0.0.0.0
/routing ospf area
add area-id=0.0.0.0 authentication=none disabled=no name="backbone" \
type=default
/ip hotspot profile
set default dns-name="" hotspot-address=0.0.0.0 html-directory=hotspot \
http-cookie-lifetime=3d http-proxy=0.0.0.0:0 login-by=cookie,http-chap \
name="default" rate-limit="" smtp-server=0.0.0.0 split-user-domain=no \
use-radius=no
/ip hotspot user profile
set default advertise=no idle-timeout=none keepalive-timeout=2m name="default" \
open-status-page=always shared-users=1 status-autorefresh=1m \
transparent-proxy=yes
/interface wireless security-profiles
set default authentication-types="" eap-methods=passthrough group-ciphers="" \
group-key-update=5m interim-update=0s mode=none name="default" \
radius-eap-accounting=no radius-mac-accounting=no \
radius-mac-authentication=no radius-mac-caching=disabled \
radius-mac-format=XX:XX:XX:XX:XX:XX radius-mac-mode=as-username \
static-algo-0=none static-algo-1=none static-algo-2=none \
static-algo-3=none static-key-0="" static-key-1="" static-key-2="" \
static-key-3="" static-sta-private-algo=none static-sta-private-key="" \
static-transmit-key=key-0 supplicant-identity="MikroTik" \
tls-certificate=none tls-mode=no-certificates unicast-ciphers="" \
wpa-pre-shared-key="" wpa2-pre-shared-key=""
add authentication-types=wpa-psk group-ciphers=tkip group-key-update=5m \
interim-update=0s mode=dynamic-keys name="profile1" \
radius-eap-accounting=no radius-mac-accounting=no \
radius-mac-authentication=no radius-mac-caching=disabled \
radius-mac-format=XX:XX:XX:XX:XX:XX radius-mac-mode=as-username \
static-algo-0=none static-algo-1=none static-algo-2=none \
static-algo-3=none static-key-0="" static-key-1="" static-key-2="" \
static-key-3="" static-sta-private-algo=none static-sta-private-key="" \
static-transmit-key=key-0 supplicant-identity="" tls-certificate=none \
tls-mode=no-certificates unicast-ciphers=tkip \
wpa-pre-shared-key="mikrotik" wpa2-pre-shared-key=""
/port
set 0 baud-rate=115200 data-bits=8 flow-control=hardware name="serial0" \
parity=none stop-bits=1
/queue type
set default kind=pfifo name="default" pfifo-limit=50
set ethernet-default kind=pfifo name="ethernet-default" pfifo-limit=50
set wireless-default kind=sfq name="wireless-default" sfq-allot=1514 \
sfq-perturb=5
set synchronous-default kind=red name="synchronous-default" \
red-avg-packet=1000 red-burst=20 red-limit=60 red-max-threshold=50 \
red-min-threshold=10
set hotspot-default kind=sfq name="hotspot-default" sfq-allot=1514 \
sfq-perturb=5
set default-small kind=pfifo name="default-small" pfifo-limit=10
/snmp
set contact="" enabled=no engine-boots=0 engine-id="" location="" \
time-window=15 trap-sink=0.0.0.0 trap-version=1
/snmp community
set public address=0.0.0.0/0 authentication-password="" \
authentication-protocol=MD5 encryption-password="" encryption-protocol=DES \
name="public" read-access=yes security=none
/system logging action
set memory memory-lines=100 memory-stop-on-full=no name="memory" target=memory
set disk disk-lines=100 disk-stop-on-full=no name="disk" target=disk
set echo name="echo" remember=yes target=echo
set remote name="remote" remote=0.0.0.0:514 target=remote
/user group
add name="read" policy=local,telnet,ssh,reboot,read,test,winbox,password,web,sn\
iff,!ftp,!write,!policy
add name="write" policy=local,telnet,ssh,reboot,read,write,test,winbox,password\
,web,sniff,!ftp,!policy
add name="full" policy=local,telnet,ssh,ftp,reboot,read,write,policy,test,winbo\
x,password,web,sniff
/interface wireless
set 0 ack-timeout=dynamic adaptive-noise-immunity=yes allow-sharedkey=no \
antenna-gain=0 antenna-mode=ant-a area="" arp=enabled band=2.4ghz-b/g \
basic-rates-a/g=6Mbps basic-rates-b=1Mbps burst-time=disabled \
comment="Wireles 1 Ke Backbone" compression=no country=no_country_set \
default-ap-tx-limit=0 default-authentication=yes default-client-tx-limit=0 \
default-forwarding=yes dfs-mode=none disable-running-check=no disabled=no \
disconnect-timeout=3s frame-lifetime=0 frequency=2457 \
frequency-mode=manual-txpower hide-ssid=no hw-retries=4 \
mac-address=00:0C:42:1B:96:50 max-station-count=2007 mode=station mtu=1500 \
name="wlan1" noise-floor-threshold=default on-fail-retry-time=100ms \
periodic-calibration=default periodic-calibration-interval=60 \
preamble-mode=both proprietary-extensions=post-2.9.25 \
radio-name="000C421B9650" rate-set=default scan-list=default \
security-profile=profile1 ssid="training" \
station-bridge-clone-mac=00:00:00:00:00:00 \
supported-rates-a/g=6Mbps,9Mbps,12Mbps,18Mbps,24Mbps,36Mbps,48Mbps,54Mbps \
supported-rates-b=1Mbps,2Mbps,5.5Mbps,11Mbps tx-power-mode=default \
update-stats-interval=disabled wds-cost-range=50-150 \
wds-default-bridge=none wds-default-cost=100 wds-ignore-ssid=no \
wds-mode=disabled wmm-support=disabled
set 1 ack-timeout=dynamic adaptive-noise-immunity=yes allow-sharedkey=no \
antenna-gain=0 antenna-mode=ant-a area="" arp=enabled band=2.4ghz-b \
basic-rates-a/g=6Mbps basic-rates-b=1Mbps burst-time=disabled comment="" \
compression=no country=no_country_set default-ap-tx-limit=0 \
default-authentication=yes default-client-tx-limit=0 \
default-forwarding=yes dfs-mode=none disable-running-check=no disabled=yes \
disconnect-timeout=3s frame-lifetime=0 frequency=2457 \
frequency-mode=manual-txpower hide-ssid=no hw-retries=4 \
mac-address=00:0C:42:1B:96:9B max-station-count=2007 mode=station mtu=1500 \
name="wlan2" noise-floor-threshold=default on-fail-retry-time=100ms \
periodic-calibration=default periodic-calibration-interval=60 \
preamble-mode=both proprietary-extensions=post-2.9.25 \
radio-name="000C421B969B" rate-set=default scan-list=default \
security-profile=default ssid="week4" \
station-bridge-clone-mac=00:00:00:00:00:00 \
supported-rates-a/g=6Mbps,9Mbps,12Mbps,18Mbps,24Mbps,36Mbps,48Mbps,54Mbps \
supported-rates-b=1Mbps,2Mbps,5.5Mbps,11Mbps tx-power-mode=default \
update-stats-interval=disabled wds-cost-range=50-150 \
wds-default-bridge=none wds-default-cost=100 wds-ignore-ssid=no \
wds-mode=disabled wmm-support=disabled
/interface l2tp-server server
set authentication=pap,chap,mschap1,mschap2 default-profile=default-encryption \
enabled=no max-mru=1460 max-mtu=1460 mrru=disabled
/interface ovpn-server server
set auth=sha1,md5 certificate=none cipher=blowfish128,aes128 \
default-profile=default enabled=no keepalive-timeout=60 \
mac-address=FE:47:D4:DA:95:67 max-mtu=1500 mode=ip netmask=24 port=1194 \
require-client-certificate=no
/interface pptp-server server
set authentication=mschap1,mschap2 default-profile=default-encryption \
enabled=no keepalive-timeout=30 max-mru=1460 max-mtu=1460 mrru=disabled
/ppp aaa
set accounting=yes interim-update=0s use-radius=no
/routing mme
set bidirectional-timeout=2 gateway-class=none gateway-keepalive=1m \
gateway-selection=no-gateway origination-interval=5s \
preferred-gateway=0.0.0.0 timeout=1m ttl=50
/routing ospf
set distribute-default=never metric-bgp=20 metric-connected=20 \
metric-default=1 metric-rip=20 metric-static=20 mpls-te-area=unspecified \
mpls-te-router-id=unspecified redistribute-bgp=no \
redistribute-connected=no redistribute-rip=no redistribute-static=no \
router-id=0.0.0.0
/routing rip
set distribute-default=never garbage-timer=2m metric-bgp=1 metric-connected=1 \
metric-default=1 metric-ospf=1 metric-static=1 redistribute-bgp=no \
redistribute-connected=no redistribute-ospf=no redistribute-static=no \
timeout-timer=3m update-timer=30s
/ip dhcp-server config
set store-leases-disk=5m
/ip hotspot service-port
set ftp disabled=no ports=21
/interface wireless align
set active-mode=yes audio-max=-20 audio-min=-100 \
audio-monitor=00:00:00:00:00:00 filter-mac=00:00:00:00:00:00 \
frame-size=300 frames-per-second=25 receive-all=no ssid-all=no
/interface wireless sniffer
set channel-time=200ms file-limit=10 file-name="" memory-limit=10 \
multiple-channels=no only-headers=no receive-errors=no \
streaming-enabled=no streaming-max-rate=0 streaming-server=0.0.0.0
/interface wireless snooper
set channel-time=200ms multiple-channels=yes receive-errors=no
/system routerboard settings
set baud-rate=115200 boot-delay=2s boot-device=nand-if-fail-then-ethernet \
boot-protocol=bootp enable-jumper-reset=yes enter-setup-on=any-key
/interface bridge settings
set use-ip-firewall=no use-ip-firewall-for-vlan=no
/ip accounting
set account-local-traffic=no enabled=no threshold=256
/ip accounting web-access
set accessible-via-web=no address=0.0.0.0/0
/ip address
add address=192.168.8.1/24 broadcast=192.168.8.255 comment="" disabled=no \
interface=Local network=192.168.8.0
add address=10.10.10.8/24 broadcast=10.10.10.255 comment="" disabled=no \
interface=wlan1 network=10.10.10.0
/ip dns
set allow-remote-requests=yes cache-max-ttl=1w cache-size=2048KiB \
max-udp-packet-size=512 primary-dns=10.100.100.1 secondary-dns=0.0.0.0
/ip firewall connection tracking
set enabled=yes generic-timeout=10m icmp-timeout=10s tcp-close-timeout=10s \
tcp-close-wait-timeout=10s tcp-established-timeout=1d \
tcp-fin-wait-timeout=10s tcp-last-ack-timeout=10s \
tcp-syn-received-timeout=5s tcp-syn-sent-timeout=5s tcp-syncookie=no \
tcp-time-wait-timeout=10s udp-stream-timeout=3m udp-timeout=10s
/ip firewall nat
add action=masquerade chain=srcnat comment="" disabled=yes out-interface=wlan1
/ip firewall service-port
set ftp disabled=no ports=21
set tftp disabled=no ports=69
set irc disabled=no ports=6667
set h323 disabled=no
set sip disabled=no
set pptp disabled=no
/ip neighbor discovery
set Local discover=yes
set ether2 discover=yes
set ether3 discover=yes
set wlan1 discover=no
set wlan2 discover=no
/ip proxy
set always-from-cache=no cache-administrator="webmaster" cache-drive=system \
cache-hit-dscp=4 cache-on-disk=no enabled=no max-cache-size=none \
max-client-connections=600 max-fresh-time=3d max-server-connections=600 \
parent-proxy=0.0.0.0 parent-proxy-port=0 port=8080 \
serialize-connections=no src-address=0.0.0.0
/ip route
add comment="Gateway" disabled=no distance=1 dst-address=0.0.0.0/0 \
gateway=10.10.10.100 scope=30 target-scope=10
add comment="Meja 1" disabled=no distance=1 dst-address=192.168.1.0/24 \
gateway=10.10.10.1 scope=30 target-scope=10
add comment="meja2" disabled=no distance=1 dst-address=192.168.2.0/24 \
gateway=10.10.10.2 scope=30 target-scope=10
add comment="meja7" disabled=no distance=1 dst-address=192.168.7.0/24 \
gateway=10.10.10.8 scope=30 target-scope=10
add comment="meja9" disabled=no distance=1 dst-address=192.168.9.0/24 \
gateway=10.10.10.9 scope=30 target-scope=10
/ip service
set telnet address=0.0.0.0/0 disabled=no port=23
set ftp address=0.0.0.0/0 disabled=no port=21
set www address=0.0.0.0/0 disabled=no port=80
set ssh address=0.0.0.0/0 disabled=no port=22
set www-ssl address=0.0.0.0/0 certificate=none disabled=yes port=443
set api address=0.0.0.0/0 disabled=yes port=8728
set winbox address=0.0.0.0/0 disabled=no port=8291
/ip socks
set connection-idle-timeout=2m enabled=no max-connections=200 port=1080
/ip traffic-flow
set active-flow-timeout=30m cache-entries=4k enabled=no \
inactive-flow-timeout=15s interfaces=all
/ip upnp
set allow-disable-external-interface=yes enabled=no show-dummy-rule=yes
/queue interface
set Local queue=ethernet-default
set ether2 queue=ethernet-default
set ether3 queue=ethernet-default
set wlan1 queue=wireless-default
set wlan2 queue=wireless-default
/radius incoming
set accept=no port=1700
/system clock manual
set dst-delta=+00:00 dst-end="jan/01/1970 00:00:00" dst-start="jan/01/1970 \
00:00:00" time-zone=+00:00
/system console
add disabled=no port=serial0 term="vt102"
/system health
set fan-mode=auto use-fan=main
/system identity
set name="8-hary"
/system logging
add action=memory disabled=no prefix="" topics=info
add action=memory disabled=no prefix="" topics=error
add action=memory disabled=no prefix="" topics=warning
add action=echo disabled=no prefix="" topics=critical
/system note
set note="" show-at-login=yes
/system ntp client
set enabled=no mode=broadcast primary-ntp=0.0.0.0 secondary-ntp=0.0.0.0
/system upgrade mirror
set check-interval=1d enabled=no primary-server=0.0.0.0 \
secondary-server=0.0.0.0 user=""
/system watchdog
set auto-send-supout=no automatic-supout=yes no-ping-delay=5m \
watch-address=none watchdog-timer=yes
/tool bandwidth-server
set allocate-udp-ports-from=2000 authenticate=yes enabled=yes max-sessions=10
/tool e-mail
set from="<>" server=0.0.0.0
/tool graphing
set store-every=5min
/tool mac-server
add disabled=no interface=all
/tool mac-server ping
set enabled=yes
/tool sniffer
set file-limit=10 file-name="" filter-address1=0.0.0.0/0:0-65535 \
filter-address2=0.0.0.0/0:0-65535 filter-protocol=ip-only \
filter-stream=yes interface=all memory-limit=10 only-headers=no \
streaming-enabled=no streaming-server=0.0.0.0
/user
add address=0.0.0.0/0 comment="system default user" disabled=no group=full \
name="admin"
/user aaa
set accounting=yes default-group=read interim-update=0s use-radius=no
[admin@8-hary] >

I have to say i wasn't very please the first few hours because the interface was very slow, and DNS requests were slow too. But after rebooting the router and my PC, everything start to fly around. This is one of the most simple and functional firmware i have seen. Configurable down to every single option, fast and easy are its traits.

I have connected my download rig, and my main rig to the router (it has 4 lan ports) and managed to save some money on the need to buy another external switch. All in all, if anyone is looking for a cheap wireless router, this is the one to go for!

By the way, there is a special version of tomato firmware for this particular model, so make sure you get that.

Links : http://www.polarcloud.com/tomato